【知識】9月16日 – 每日安全知識熱點
熱點概要:音樂視頻服務網站Vevo遭OurMine入侵,3.12TB數據被公布、ExpensiveWall:又一個影響420多萬Google Play Store用戶的Android惡意軟件(含分析報告)、逆向英雄聯盟客戶端、BlueBorne安全威脅淺析、[exploit-db]D-Link DIR8xx Routers多個漏洞、RDP Pivoting with Metasploit
資訊類:
音樂視頻服務網站Vevo遭OurMine入侵,3.12TB數據被公布
https://www.hackread.com/ourmine-hacks-video-leaks-data-online/
ExpensiveWall:又一個影響420多萬Google Play Store用戶的Android惡意軟件,Google已移除50個包含惡意代碼的app
http://thehackernews.com/2017/09/play-store-malware.html
VMware修復可允許Guest在Host上執行代碼的bug
https://threatpost.com/vmware-patches-bug-that-allows-guest-to-execute-code-on-host/127990/
技術類
ExpensiveWall分析報告
https://research.checkpoint.com/expensivewall-dangerous-packed-malware-google-play-will-hit-wallet/
逆向英雄聯盟客戶端
https://nickcano.com/reversing-league-of-legends-client/
BlueBorne安全威脅淺析
https://duo.com/blog/an-analysis-of-blueborne-bluetooth-security-risks
通過Chrome DLL劫持藏在廣告軟件包中的盜密碼後門
ARM exploitation for IoT (Part 2)
https://quequero.org/2017/09/arm-exploitation-iot-episode-2/
傳送門 Part 1:
https://quequero.org/2017/07/arm-exploitation-iot-episode-1/
后滲透框架RemoteRecon
https://github.com/xorrior/RemoteRecon
Exploit toolkit for CVE-2017-8759——.NET Framework RCE
toolkit地址:https://github.com/bhdresh/CVE-2017-8759
視頻教程:
.NET中繞過UAF
https://offsec.provadys.com/UAC-bypass-dotnet.html
.NET遠程處理(Remoting)介紹for Hackers
https://parsiya.net/blog/2015-11-14-intro-to-.net-remoting-for-hackers/
RDP Pivoting with Metasploit
http://www.hackingarticles.in/rdp-pivoting-metasploit/
[exploit-db]D-Link DIR8xx Routers多個漏洞
本地固件上傳:https://www.exploit-db.com/exploits/42731/
登錄憑證泄露:https://www.exploit-db.com/exploits/42729/
ROOT權限遠程代碼執行:https://www.exploit-db.com/exploits/42730/
Debug Cisco ASA Tools
https://github.com/nccgroup/asatools
Wiegotcha: 遠距離RFID信號竊取
https://github.com/lixmk/Wiegotcha/blob/master/README.md
檢測Mimikatz及其他可疑LSASS訪問
https://www.eideon.com/2017-09-09-THL01-Mimikatz/
本文由 安全客 原創發布,如需轉載請註明來源及本文地址。
本文地址:http://bobao.360.cn/learning/detail/4424.html